FortiPortal - Unrestricted file upload vulnerability

Summary

An unrestricted file upload vulnerability (CWE-434) in the web interface of FortiPortal may allow a low-privileged user to potentially tamper with the underlying system's files via the upload of specifically crafted files.

Affected Products

FortiPortal 6.0.4 and below.
FortiPortal 5.3.5 and below.
FortiPortal 5.2.5 and below.
FortiPortal 5.1.2 and below.
FortiPortal 5.0.3 and below.
FortiPortal 4.2.4 and below.
FortiPortal 4.1.2 and below.
FortiPortal 4.0.4 and below.

Solutions

Upgrade to FortiPortal 6.0.5 or above.
Upgrade to FortiPortal 5.3.6 or above.
Upgrade to FortiPortal 5.2.6 or above.
Fix for versions 5.1, 5.0, 4.2, 4.1, 4.0 and 3.2 to be confirmed.

Acknowledgement

Discovered and reported by Giuseppe Cocomazzi of Fortinet Product Security team.